ThreatRavens.

Browsing category

Exploit

Browser Vulnerability, Computer Security, explo, Exploit, Exploit Browser, hacking, IoT, Pwn2Own, Uncategorized, ZERO day,

Pwn2Own 2019 – Tesla Car Internet Browser Hacked – Hackers Won the Car & $545,000 in Total – Day 3

First and the second-day contest ended up with a various successful attempt to exploit the different bugs in multiple software vendors including, Microsoft, VMware, Oracle and Apple. In Pwn2Own 2019 final day, Zero Day Initiative introduced the Tesla car in automotive category and the Fluoroacetate team made an attempt to exploit the Tesla Model 3 […]

The post Pwn2Own 2019 – Tesla Car Internet Browser Hacked – Hackers Won the Car & $545,000 in Total – Day 3 appeared first on GBHackers On Security.

March 24, 2019

Exploit, Uncategorized, Vulnerability, Word press, Wordpress, WordPress Plugins, Zeo day, ZERO day,

Zero-day Stored XSS Vulnerability in WordPress Social Share Plug-in let Hackers to Compromise 70,000 Websites

Researchers discovered a critical Stored XSS Zero-day flaw in widely used social sharing plug-in called “Social Warfare” let attackers inject the malicious script and take over the vulnerable WordPress websites. Social Warfare, a social sharing plugin for WordPress powered by Warfare Plugins that help to get more social shares for WordPress based website developers which […]

The post Zero-day Stored XSS Vulnerability in WordPress Social Share Plug-in let Hackers to Compromise 70,000 Websites appeared first on GBHackers On Security.

March 23, 2019

Anti Virus, Backdoor, Computer Security, Exploit, Exploitation Tools, Infosec- Resources, Msfvenom, therat, trojan, Veil Framework,

Malicious Payload Evasion Techniques with Advanced Exploitation Frameworks

Sophisticated threats are Evolving with much more advanced capabilities and giving more pain for analysis even evade the advanced security software such as Antivirus. This comparison is made by the payload ability to bypass the default security frameworks accessible on Windows machines and antivirus systems available, searching for an approach to get a payload that […]

The post Malicious Payload Evasion Techniques with Advanced Exploitation Frameworks appeared first on GBHackers On Security.

March 23, 2019

"Edge", Computer Security, Ethical Hackers, Exploit, Firefox, Pwn2Own, Pwn2Own 2019, Uncategorized, vmware, Vulnerability, Windows, ZDI, ZERO day,

Pwn2Own 2019 – Firefox, Edge, Windows, VMware Hacked – Ethical Hackers Earned $270,000 USD in Day 2

In the second day of Pwn2Own 2019 contest, Ethical Hackers compromised Microsoft Edge, Mozilla Firefox, Windows, VMware and earned $270,000 USD in a single day by submitting 9 unique zero-day exploits. The first day, 2 teams of researchers and 2 independent researchers have been made $240,000 USD by reporting 9 zero-day bugs in Safari, VMware, […]

The post Pwn2Own 2019 – Firefox, Edge, Windows, VMware Hacked – Ethical Hackers Earned $270,000 USD in Day 2 appeared first on GBHackers On Security.

March 22, 2019

APT, Backdoor, Exploit, Goldmouse APT group, Malware, Vulnerability, WinRAR, Word documents,

APT-C-27 Hackers Launching njRAT Backdoor via Weaponized Word Documents to Control the Compromised Device

Goldmouse APT group (APT-C-27) now start exploiting the WinRAR vulnerability (CVE-2018-20250[6]) to hide the njRAT backdoor and targeting users reside in the Middle East via decoy Word document to compromise and control the device. The 19-year-old vulnerability was disclosed by checkpoint security researchers last week, the vulnerability resides in the WinRAR UNACEV2.DLL library. Since the vulnerability has […]

The post APT-C-27 Hackers Launching njRAT Backdoor via Weaponized Word Documents to Control the Compromised Device appeared first on GBHackers On Security.

March 20, 2019

Computer Security, Cyber Attack, Exploit, Malware, Ransomware, Vulnerability, Windows, WinRAR,

Alert !! Hackers Launching New JNEC.a Ransomware via WinRAR Exploits – Do not Pay

A brand new JNEC.a ransomware spreading via recently discovered WinRAR vulnerability exploit to compromise windows computer & demand the ransom amount. This exploits leverage the recently discovered WinRAR ACE code injection vulnerability, since then attackers continuously exploiting to intrude the targeted system in various ways. WinRAR is the worlds most popular Compression tool that used […]

The post Alert !! Hackers Launching New JNEC.a Ransomware via WinRAR Exploits – Do not Pay appeared first on GBHackers On Security.

March 19, 2019

CVE-2019, Exploit, Google, Naked Security Podcast, Podcast, Project Zero,

Ep. 023 – Facebook promises and Google Chrome patches [PODCAST]

Here’s the latest Naked Security podcast – listen now, and tell your friends and colleagues about us, too!

This post appeared first on Naked Security Blog by Sophos
Author: Paul Ducklin

March 15, 2019

Computer Security, Exploit, Payload, Vulnerability, Windows, WinRAR,

Beware !! Hackers Exploiting WinRAR Vulnerability on Windows System While Users Extract the contents

Cyber Criminals launching a massive payload campaign that exploit the vulnerability that existed in the WinRAR compression tool to compromise the target Windows System. Since the vulnerability has been already patched, attacker aiming to exploit and compromise the unpatched vulnerable systems. Researchers from checkpoint recently discovered this 19-year-old Remote Code Execution bug vulnerability in WinRAR […]

The post Beware !! Hackers Exploiting WinRAR Vulnerability on Windows System While Users Extract the contents appeared first on GBHackers On Security.

March 15, 2019

APT hackers, Computer Security, Exploit, Hacks, Security Hacker, Vulnerability, Windows, ZERO day,

APT Hackers Group Exploiting the Window OS Using New Zero day Vulnerability

Cyber criminals started exploiting the Microsoft windows os using recently discovered win32k zero day vulnerability that was patched by Microsoft recently. A zero-day vulnerability that resides in the win32k.sys allows attackers to exploit 64-bit operating systems in the range from Windows 8 to Windows 10. This vulnerability ( CVE-2019-0797) was initially discovered by the kaspersky […]

The post APT Hackers Group Exploiting the Window OS Using New Zero day Vulnerability appeared first on GBHackers On Security.

March 15, 2019

Computer Security, Exploit, Microsoft, Microsoft security updates, security updates, Vulnerabilities, ZERO day,

Microsoft Released Security updates with the Fixes for 64 Vulnerabilities

A new Microsoft security update released for March 2019 under patch Tuesday with the fixes for 64 vulnerabilities, so its time to update your Windows System. These patched vulnerabilities are affected by many of the Microsoft products including, Adobe Flash Player Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office SharePoint ChakraCore Team […]

The post Microsoft Released Security updates with the Fixes for 64 Vulnerabilities appeared first on GBHackers On Security.

March 13, 2019

Older Posts